$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q1-dJuvpMjBSH0iSVAadqPK41aQ.roa File: Q1-dJuvpMjBSH0iSVAadqPK41aQ.roa (raw, json) Hash identifier: afaiRfbhrUdrtYR145RHeWCuoVPXEBNH8ORTpe6dvBY= Subject key identifier: 43:5F:9D:26:EB:E9:32:30:52:1F:48:92:54:06:9D:A8:F2:B8:D5:A4 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11D0 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q1-dJuvpMjBSH0iSVAadqPK41aQ.roa Signing time: Mon 26 Aug 2024 05:24:24 +0000 ROA not before: Mon 26 Aug 2024 05:24:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.67.144.0/20 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4560 (0x11d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=435F9D26EBE93230521F489254069DA8F2B8D5A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:30:ff:07:68:63:e3:4a:36:af:29:ad:f9:60: 30:9e:2d:a0:0d:b4:69:84:7a:72:49:d3:e2:35:71: fc:f0:3c:b5:ee:0c:54:67:eb:6c:53:7f:18:64:93: 97:32:1d:8f:03:ec:e0:3c:b6:7a:4b:20:3b:01:c8: 25:7f:fa:fe:dc:a4:5b:7f:84:68:84:75:ae:b6:61: 30:ff:29:56:84:22:ac:22:b6:38:3c:36:83:1d:cb: 08:bd:15:05:80:c3:24:fa:43:59:b4:91:48:c5:7f: f2:26:36:7f:78:a7:d7:2c:51:de:4e:0e:8a:1a:48: b7:35:83:c2:6c:fc:b7:c3:cb:f6:d4:5a:f6:fe:60: 0d:00:c5:7d:2c:59:b2:6c:d9:e0:67:fb:2c:a3:e0: 43:f2:37:f2:66:34:09:f7:c0:c9:35:f8:d4:e1:7b: f3:e2:bf:01:79:32:9e:c7:e2:d8:04:d6:32:46:ad: 60:d2:b2:03:d4:bd:af:82:d1:02:7e:64:18:59:8e: 22:c8:80:55:b1:4d:15:17:f3:a6:a9:b0:30:d5:d6: 38:ce:d3:ae:17:41:c2:67:09:93:2c:ef:f5:22:5d: 84:7e:48:dd:cb:d5:da:39:f0:46:ab:fa:e8:b7:04: 00:f0:46:e8:59:e6:9a:ac:b1:ef:68:9c:04:bf:fb: 79:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5F:9D:26:EB:E9:32:30:52:1F:48:92:54:06:9D:A8:F2:B8:D5:A4 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q1-dJuvpMjBSH0iSVAadqPK41aQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.144.0/20 Signature Algorithm: sha256WithRSAEncryption 1a:9f:cc:df:25:33:1a:42:8f:95:c7:36:99:ce:5b:b6:63:c1: 3f:e0:de:96:70:0e:90:c6:c8:d0:07:54:59:d3:e0:bb:75:23: 83:6a:53:67:be:a6:fe:ed:44:c2:df:53:cf:9a:f1:40:19:ca: 7b:48:93:d1:99:ec:06:fa:75:b6:b9:aa:dd:72:04:f8:06:b3: 4d:4a:96:39:c5:64:de:ca:5b:d3:8a:03:d1:9e:5c:24:86:e9: 0f:1d:b6:b3:f9:7c:e4:5c:1d:fc:22:0e:45:47:12:58:a0:4c: 3e:a9:65:ba:6d:50:3d:03:c7:56:de:e5:9c:b5:12:7b:a2:2d: 57:87:23:eb:ef:cb:3b:37:5d:d2:30:8b:6d:a6:10:d5:ad:79: 5c:5f:54:dd:62:25:f4:c5:b6:d7:9d:d8:df:ad:90:60:fd:91: 98:e3:72:5e:26:0b:4d:0f:ac:95:90:10:2e:fe:85:f0:d7:ce: be:ad:7a:54:8f:c1:5c:a8:ef:f4:54:d9:35:72:75:76:a2:c1: 46:22:84:d4:53:a4:7e:34:73:15:30:02:58:fa:70:1f:4f:cf: 9c:9e:00:15:7c:bc:5a:f7:2f:d8:fd:b7:ed:38:6a:ab:0f:23: c5:94:f8:81:aa:b3:0e:ff:e7:92:3b:f2:b7:c3:75:ab:5a:85: da:40:8e:b2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzNUY5RDI2RUJFOTMy MzA1MjFGNDg5MjU0MDY5REE4RjJCOEQ1QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFMP8HaGPjSjavKa35YDCeLaANtGmEenJJ0+I1cfzwPLXuDFRn 62xTfxhkk5cyHY8D7OA8tnpLIDsByCV/+v7cpFt/hGiEda62YTD/KVaEIqwitjg8 NoMdywi9FQWAwyT6Q1m0kUjFf/ImNn94p9csUd5ODooaSLc1g8Js/LfDy/bUWvb+ YA0AxX0sWbJs2eBn+yyj4EPyN/JmNAn3wMk1+NThe/PivwF5Mp7H4tgE1jJGrWDS sgPUva+C0QJ+ZBhZjiLIgFWxTRUX86apsDDV1jjO064XQcJnCZMs7/UiXYR+SN3L 1do58Ear+ui3BADwRuhZ5pqsse9onAS/+3mLAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUQ1+dJuvpMjBSH0iSVAadqPK41aQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUTEtZEp1dnBNakJTSDBp U1ZBYWRxUEs0MWFRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNJDkDANBgkqhkiG9w0BAQsFAAOCAQEAGp/M3yUzGkKPlcc2mc5btmPBP+DelnAO kMbI0AdUWdPgu3Ujg2pTZ76m/u1Ewt9Tz5rxQBnKe0iT0ZnsBvp1trmq3XIE+Aaz TUqWOcVk3spb04oD0Z5cJIbpDx22s/l85Fwd/CIORUcSWKBMPqllum1QPQPHVt7l nLUSe6ItV4cj6+/LOzdd0jCLbaYQ1a15XF9U3WIl9MW2153Y362QYP2RmONyXiYL TQ+slZAQLv6F8NfOvq16VI/BXKjv9FTZNXJ1dqLBRiKE1FOkfjRzFTACWPpwH0/P nJ4AFXy8Wvcv2P237Thqqw8jxZT4gaqzDv/nkjvyt8N1q1qF2kCOsg== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org